Use conn:execute{} to call stored procedures which exist in your database.
The only thing you need to be careful of is to make sure that values coming from external sources are properly escaped. We will use the conn:quote{} function to do this. The conn:quote{} function quotes all returned strings, so you must not add quotes around strings in SQL query text.
Other than this, all you have to do is concatenate your strings to create the stored procedure call.
Add example