diff --git a/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql b/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql
index c231c132d38..39f6b3c8b52 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-598/SensitiveGetQuery.ql
@@ -23,18 +23,13 @@ class SensitiveInfoExpr extends Expr {
   }
 }
 
-/** GET servlet method of `javax.servlet.http.Servlet` and subtypes. */
-private predicate isGetServletMethod(Callable c) {
-  c.getDeclaringType() instanceof ServletClass and
-  c.getNumberOfParameters() = 2 and
-  c.getParameter(1).getType() instanceof ServletResponse and
-  c.getName() = "doGet"
-}
+/** Holds if `c` is a call to some override of `HttpServlet.doGet`. */
+private predicate isGetServletMethod(Callable c) { isServletMethod(c, "doGet") }
 
 /** Sink of GET servlet requests. */
 class GetServletMethodSink extends DataFlow::ExprNode {
   GetServletMethodSink() {
-    exists(Method m, MethodAccess ma | ma.getMethod() = m |
+    exists(MethodAccess ma |
       isGetServletMethod(ma.getEnclosingCallable()) and
       ma.getAnArgument() = this.getExpr()
     )
diff --git a/java/ql/src/semmle/code/java/frameworks/Servlets.qll b/java/ql/src/semmle/code/java/frameworks/Servlets.qll
index aa725596c84..b9a71f00838 100644
--- a/java/ql/src/semmle/code/java/frameworks/Servlets.qll
+++ b/java/ql/src/semmle/code/java/frameworks/Servlets.qll
@@ -322,3 +322,12 @@ class ServletWebXMLListenerType extends RefType {
     //  - `HttpSessionBindingListener`
   }
 }
+
+/** Holds if `c` is a call to some override of methods of `HttpServlet`, for example `doGet` or `doPost`. */
+predicate isServletMethod(Callable c, string methodName) {
+  c.getDeclaringType() instanceof ServletClass and
+  c.getNumberOfParameters() = 2 and
+  c.getParameter(0).getType() instanceof ServletRequest and
+  c.getParameter(1).getType() instanceof ServletResponse and
+  c.getName() = methodName
+}