Unbounded pagination limits enable resource exhaustion in cobc-events

Several REST endpoints accepted a client-controlled `limit` query parameter with no upper bound, allowing authenticated users to request arbitrarily large result sets and exhaust database / memory.