Again, there is nothing on the page source. Let intercept the packet and see if there are more information. From the intercepted packet after login as natas5, there is a cookie called loggedin that set to 0. Setting this value to 1 before forwarding will granted the password for next level.
Here is some basic of cookie.