The fundamental reason why most SQL injection detection methods are difficult to use in practice is the low reusability of the implementation code. This paper presents a reusable SQLinjection detection method for Java Web applications based on AOP (Aspect-OrientedProgramming) and dynamic taint analysis, which encapsulates the dynamic taint analysisprocesses into different aspects and establishes aspect library to realize the large-grainedreuse of the code for detecting SQL injection attacks. A metamodel of aspect library isproposed, and a management tool for the aspect library is implemented. Experiments showthat this method can effectively detect 7 known types of SQL injection attack such astautologies, logically incorrect queries, union query, piggy-backed queries, storedprocedures, inference query, alternate encodings and so on, and support the large-grained reuse of the code for detecting SQL injection attacks