for (i=0; list[i].name!=NULL && (i<number || number==-1); i++)

Checks list[i].name before checking i < number, which is OOB when using an exact count and no sentinel entry. See:

Zeex/sampgdk#188

Edit: Not an overflow, since nothing is written, but still OOB.

I confirmed this to be a bug. It is now fixed.
Thanks.