my $sth = $dbh-> prepare ("select * from sometable where id=?");
$sth->execute("12345");

##</code><code>##

$command = $dbh->quote($command);