Upgrading Drupal

I posted on this five days ago and got zero response. It seems like a major problem, and I would greatly appreciate any help or guidance anyone might offer.

I've had a huge headache with cracker(s) lately, too many minor annoyances to list. Thought I had them under control until I started getting logged out at random and getting validation errors whenever I try to do anything as admin.

I upgraded from 4.7.3 to 4.7.7 because of the security announcement about cross-site scripting vulnerabilities. That seemed to go smoothly, but the problems persist. Today I discovered a new one, and it's a doozy.

Anyone who hits the site in a certain way (not sure what that way is) gets full administrative privileges. When I visit the site from the-cloak.com, I have full administrative privileges. When I visit the site normally, I get logged out at random and have multiple validation errors when trying to do anything. The access log on the server shows the visits from the-cloak ip address as going swimmingly. Banning that ip wouldn't do much as I suspect it has to do with the way the-cloak accesses the site and not with the-cloak itself. At any rate, I can't seem to add access rules due to validation errors.

I'm also getting failed login attempts galore from a random user name coming from multiple ip addresses.

I've been trying to upgrade my site from Drupal 4.7.7 to 5.2 and get a very ugly error.

i found the following post with a very similar problem but i not use the cck module. i use flexinode.

http://drupal.org/node/100744

i need help please.

Does anyone know if there is a wildcard capability within drupal?
For example, on the CCK text field "allowable values". Is there any way to have it so if the string contains a certain value? Like a php eregi statement?

So, let's say I created text field for an ad call:

http://www.anysite.com/area=category.a/page=pag.2/aamsz=468x60

I want to be able to verify that the url they entered at least contains "area=" and if it doesn't, then error the form out.

Hi,
I have installed Drupal 5.1 recently and during the development the new version became available. I would like to patch (I am afraid of upgrade) but I don't know how to apply the patch. If I try to download it, it just opens in a browser and there is a text file. What can I do?

Thanks for your help!

After upgrading 4.6 to 5.1, existing content appears ok but any newly created content gives an "access denied" error to any users other than the admins. Any ideas?

I made an update of my site. If i go to my site http://mysite.com i get the error messages below.

If i go to http://mysite.com/node or http://mysite.com/admin etc everything goes fine?

Any suggestions?

Jan

Warning: Table 'beersel_nieuwgroen.sessions' doesn't exist query: SELECT sid FROM sessions WHERE sid = '0f20792e2bda95ba426361f611d8b2cb' in /home/beersel/public_html/agalev/includes/database.mysql.inc on line 121

Warning: Table 'beersel_nieuwgroen.users' doesn't exist query: SELECT u.* FROM users u WHERE u.uid = 0 in /home/beersel/public_html/agalev/includes/database.mysql.inc on line 121

Warning: session_start() [function.session-start]: Cannot send session cookie - headers already sent by (output started at /home/beersel/public_html/agalev/includes/database.mysql.inc:121) in /home/beersel/public_html/agalev/includes/bootstrap.inc on line 760

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/beersel/public_html/agalev/includes/database.mysql.inc:121) in /home/beersel/public_html/agalev/includes/bootstrap.inc on line 760

Warning: Table 'beersel_nieuwgroen.access' doesn't exist query: SELECT * FROM access WHERE status = 1 AND type = 'host' AND LOWER('134.184.84.95') LIKE LOWER(mask) in /home/beersel/public_html/agalev/includes/database.mysql.inc on line 121