my %params = $cgi->Vars();
....
my $sql = "insert into recherche (ort, mv_id, mol_id, ...) 
                 values ("   $dbh->quote($params{ort}) . ","
                           . $dbh->quote($params{mv_id}) . ","
                           . $dbh->quote($params{mol_id}) . ","
                          . $dbh->quote($params{dgm_id}) . "," ...