The default HTML editor provider allows unauthenticated file uploads and images can overwrite existing files.

An unauthenticated user can upload and replace existing files allowing defacing a website and combined with other issue, injection XSS payloads.