profile-pic
Vetted Talent

Bhuvnesh Anand

Vetted Talent

Senior Full Stack Engineer with 7+ years of experience building scalable web platforms using Laravel, CodeIgniter, React, and MySQL.

Built enterprise systems used by 100+ internal users, reducing manual workflows by 40%. Experienced in API design, database optimization, authentication systems, and system architecture.

Actively seeking Senior Full Stack / Backend Engineer roles in product-based companies (15–20 LPA).

Tech Stack: Laravel, PHP 8, React, MySQL, REST APIs, Git, Docker (learning), System Design fundamentals.

  • Role

    Senior PHP Full Stack Developer

  • Years of Experience

    19.17 years

Skillsets

  • jQuery
  • VS Code
  • System Design
  • session management
  • REST
  • react
  • Rbac
  • Postman
  • PHP
  • nginx
  • MySQL
  • Laravel
  • Apache
  • JavaScript
  • HTML5
  • Github
  • Git
  • CSS3
  • crud
  • CodeIgniter
  • Bootstrap
  • Authentication
  • Api Security

Vetted For

10Skills
  • Roles & Skills
  • Results
  • Details
  • icon-skill_image
    Full-Stack Web Applications Developer (WordPress / PHP)AI Screening
  • 52%
    icon-arrow-down
  • Skills assessed :CI CD, Cloud Hosting, Docker, Kubernetes, RESTAPI, JavaScript, jQuery, MySQL, PHP, Laravel / Symphony
  • Score: 52/100

Professional Summary

19.17Years
  • May, 2025 - Present1 yr

    Executive

    Sendmygift

  • Senior Web Developer

    Modefin

  • Web Developer and digital marketing

  • Oct, 2015 - Oct, 20161 yr

    Order Processing Executive

    SendMyGift

Work History

19.17Years

Executive

Sendmygift
May, 2025 - Present1 yr

Senior Web Developer

Modefin
    Designed and developed enterprise management portal modules including Sales, HR, Finance, IT, and Client Management using CodeIgniter and MySQL. Built REST APIs and backend services to support internal workflows and integrations. Designed scalable database schemas and optimized SQL queries improving system performance and reliability. Implemented authentication, RBAC, and session management for secure enterprise access. Delivered full-stack features including backend logic and responsive frontend integration. System used by 100+ internal users, reducing manual tracking by 30–40%. Independently managed and delivered 10+ major modules.

Web Developer and digital marketing

    Developed dynamic client web applications using PHP and MySQL. Built responsive UIs using HTML, CSS, JavaScript, and Bootstrap. Implemented CRUD modules and database-driven features. Collaborated with designers and QA teams to deliver production-ready solutions.

Order Processing Executive

SendMyGift
Oct, 2015 - Oct, 20161 yr
    Managed bulk order processing and internal coordination. Transitioned into software development career after this role.

Major Projects

4Projects

Laravel Tasks API

    Built REST API for task management with authentication and CRUD operations. Designed MySQL schema and API endpoints using Laravel MVC architecture. Implemented validation, token-based authentication, and clean code structure.

MFS Life Management Portal

    Full-stack development of enterprise portal with Sales, HR, IT, Finance, Employee, and Client modules. Designed backend architecture and frontend dashboards using CodeIgniter and Bootstrap. Automated internal workflows improving efficiency by 30–40%.

90 Days Ultrac Personal Finance Management Tool

    Developed financial tracking system for individuals and families. Implemented user accounts, transaction tracking, and family member modules.

Flask Login System

    Developed authentication system with user registration and session management. Integrated MySQL database for credential storage.

Education

  • B.E. in Information Science

    KNS Institute of Technology

AI-interview Questions & Answers

okay in sql injection we use prepared statements prepared statements are nothing but the statements which separate the data from the sql query so during sql attacks happens when a user enters malicious javascript code into the system which will access the confidential information in the system and the data from the database so in order to overcome this we use prepared statements also we what we do is we will validate the query we will validate the inputs before sending them and we remove access we also avoid

Could you let me understand more about your background by giving brief introduction of you? Okay. Myself, Bhuvanesh Anand, I've been working for 8.4 years in Morphine Server. I have experience in PHP frameworks like Core Igniter and Laravel, and back-end technologies like MySQL, CorePHP, and front-end technologies like Bootstrap, jQuery, JavaScript. Recently, I also worked in React.js projects. The main responsibility given in that company is taking care of management portal. The portal had 35-plus modules like IT management, HR management, admin, sales, almost 100 to 150-plus users use the system. This system is handled by myself. Every day, I used to get the feature updates, maintain the system, always take the user's suggestions to make the user interface compassionable and easy to use. It was a wonderful experience working with Morphine.

Okay, in PHP, the main principles we follow is, first we design the architecture like a model, view, controller. Models take care of the connection with the database. Controllers take care of the business logic between the view and the model. And view is the presentation layer. We always try to segregate the database interaction and the view by using controller logic. This helps to keep the code maintainable. The user, we use form validation so that valid user inputs get into the system. We also escape the characters which might not be well structured, or which can easily break the system logic while displaying.

What are the steps you take to mitigate a cross-site scripting vulnerability following WordPress theme you developed? So cross-site scripting mainly occurs when a user tries to access the data which is inside the database. So when a user is entering the data through forms, we need to validate the proper data entering into the system. We can use form validations. And there may be possible of excess threads that may not hold good for the system's data.

Can you identify potential SQL injection points in the WordPress website? For more information, visit www.sqlfinancial.com

What methods do you use to test and verify the security? So if the data, suppose if we are fetching the records which is more than 1 lakh count then probably there may be chances that the load is more and the records may not display as expected. So what we do is we can use, we can catch the data, if suppose in case if multiple pages are accessing the same data we can use catch, PHP catching techniques in order to overcome the load. We can use pagination to load only the required data and if it comes to security we need to make sure, we need to authorize the data by checking if the user is logged in. Only authenticated users has to be allowed to check the, allow the data.

Okay.

How do you ensure that the PHP function you develop follows the single responsibility?

I will remove the filler words and correct the grammatical errors. Here is the corrected text: To handle error logging and exception handling in PHP, the first way is to write test cases and use return statements to check whether the data we are getting is as expected. We use try-catch blocks to check the code, which is one of the methods we can use to check error handling and use try-catch to check the code.

What approach would you take to optimize MySQL query? I can use explain statement to understand the query. I can use I will check whether how long whether there is repetition in the SQL queries. I will always avoid queries which if you if you are selecting the all columns and for example select star is not is avoided is avoided and only use only the where classes wherever it is required.