diff --git a/waf.lua b/waf.lua
index b5925c3..ddb31a8 100644
--- a/waf.lua
+++ b/waf.lua
@@ -88,7 +88,7 @@ agent=read_rule('user-agent')
 whitelist=read_rule('whitelist')
 if  ngx.re.match(ngx.var.request_uri,whitelist,"i") then
     return
-elseif ngx.req.get_body_data() and ngx.re.match(ngx.req.get_body_data(),[[^(?!Content-Disposition: form-data;(.*)filename="(.*).(php|jsp|phtml)").*$]],"isjo") then
+elseif ngx.req.get_body_data() and ngx.re.match(ngx.req.get_body_data(),[[^(?!Content-Disposition: form-data;(.*)filename="(.*).(php|jsp|phtml|asp|aspx|cgi)").*$]],"isjo") then
     return
 else
     if ngx.re.match(string.gsub(ngx.unescape_uri(ngx.var.request_uri),"%%",""),regex.."|"..get,"isjo") then