SECURITY RISK!!! adding a field with quotation marks " breaks the plugin and opens code injection risks!!!!

[LazaroFilm]

If your filed text has text with quotations marks, it will break the option as it closes the text field too early.

I discovered this with a radio button field that had values in inches symbolized by " as in 1/4" I changed it to 1/4in

The issue is that this is true for text entry fields as well. Does that means that users can inject code in the website through a simple text field. Are the text fields sanitized before being processed?