I don't check input if it is only for DB insertion

If you use placeholders in your SQL queries, you don't need to worry about escaping issues, and you can write cleaner database queries that don't contain Perl code or variables.