how could I update this code using placeholders instead of variables in the sql statement

No variables are interpolated into the SQL statement you showed.

What is confusing me is the "$thisdata[]".

I'm confused too because that doesn't appear in what you posted.

Did you post the wrong code??? One comment about the code you did post is that it's silly and confusing to assign a value to $thisdata only to replace it with a different value.

All what you need is to use prepared statements

my $query = $dbh->prepare("select users from mytable where number = ? 
+and serie = ?");
$query->execute(100,450);
while ( my $row = $query->fetchrow_hashref ) { 
    print $row->{'users'};
}
[download]

I don't remember seeing an exec_select method in the DBI class (I might be wrong).

In this case, the use of placeholders is unnecessary. Values hard-coded in SQL--especially simple integers like this--have no security risks or negative performance implications. Interpolating variables into SQL strings is a security risk.

With that said, if you have a SQL abstraction system, using placeholders is fine if it reduces duplicate or near-duplicate code, but that appears not to be a concern here.