$quoted_string = $dbh->quote($string);
You may want to see DBI.