If the site has a /HTMLEditor/ then it is using the older version of HTMLEditor and could have a security issue. The safest bet is to delete that folder and re-apply any rich text editing fields using Data Bridge, or get Design Extender and update your entire CMS system to get it up to date and it won't use that folder any more.