# $comment contains the user form input

my $sql = "insert into my_table " .
          "(COMMENT) " .
          "values ('$comment')";

my $sth = $dbh->prepare($sql);
my $rc = $sth->execute();