I am a perl beginer.. All I am trying to do is -Accept and argument and pass that argument into an sql query. But I have to validate the input before I pass the argument to the sql code. For ex- if I pass the argument as TE\'ST and my query is select * from table where entry is TE\'ST and that is not good..so how can I write a validation statement to detect SQL injection. Thanks in advance