my $sth = $dbh->prepare ("select username, password from users where sid='?';" );
                            
my $affected = $sth->execute ( $input );