It has been in the code for roughly two years. The point to all of this is why CryptoAve? If one has knowledge of this flaw, why would one attack a brand new exchange with few users and no potential to profit for doing so?
While cryptoave was small, it still had a good amount of money on it worth stealing. I'm not at all saying it did or didn't happen, as I'm neutral on it until real proof of what happened comes out.