FYI, trunk has been patched with solutions to both of these security fixes and I will be in the process of notifying all of the reporting services so they publish this information; see the original post for updated information.
admin note: clarified for those with feed readers who don’t see the entire thread in context
The current download available at the MODx download site was replaced by a version containing the patches for 0961 in this thread. 0962 will also contain these patches as Jason mentioned. If you’ve not applied the security patch already (shame on you!), you can either grab it via the instructions listed above or just download the complete installer from the downloads page and install via the normal upgrade mode. If you’re not running this latest patched version, now would be a very good time to upgrade.
, MODX Co-Founder & Leader of Awesomeness
Follow me on Twitter at @rthrash or catch my occasional unofficial thoughts at thrash.me