Kentio 13 Form Input Validation for security

If you aren't using any custom form components, then the default ones are sanitized - so even if somebody will submit a text with e.g. some JS command, it will be just text, it will not be executed. Or, do you have any proof of concept?
One idea would be adding e.g. a custom Javascript code to the page to do the client side validation. Or, to do a server side validation, you can use the bizformitem event handler and e.g. in the before insert event check the submitted data, parse them and decide whether you want to save them or not.

Thanks Juraj for the hasty reply,

We in fact are not using any custom form components, so from a security point of view is there any need to worry about what might be entered by a user, from either client or server side if these fields are being sanitised?

Is there any recommendations on this?

At this moment we are not aware of any security issues. And our security team is checking these things regularly and especially things like user inputs are checked multiple times. Any user input, especially from the live site is being sanitized. Unless you have some new technique we are not aware of such an attack yet.