$sql = "select * from tabelle where feld = ?";
$sth = $dbh->prepare($sql);
$sth->execute('test');