The invention relates to an extensible intelligent contract vulnerability detection method, and belongs to the technical field of intelligent contracts. The method comprises the following steps: firstly, summarizing vulnerability characteristics of the intelligent contract according to common intelligent contract safety vulnerabilities, and constructing a intelligent contract vulnerability rule base according to a characteristic custom rule; when a user detects the intelligent contract source code, a lexical analyzer and a syntax analyzer are generated through a self-defined ANTLR syntax rule,lexical analysis and syntax analysis are conducted on the intelligent contract source code, and the intelligent contract source code is converted into an abstract syntax tree and then converted intoXML intermediate representation; then extracting an XPath expression in the rule base file to inquire and locate matched nodes in the XML intermediate representation; and finally, repositioning the row number in the source code to form a vulnerability analysis report. By constructing the custom contract vulnerability rule base, detection is convenient, the speed is high, the accuracy is high, andthe expansibility is good.